d76e7bad1598563cb8c0b4b94369f234 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d76e7bad1598563cb8c0b4b94369f234
Size

27KB
MD5

d76e7bad1598563cb8c0b4b94369f234
SHA1

06ce9a2763aeddc077cc551de744546542850d42
SHA256

99cbceaf27e92f369cdd36d6ce79f1a76f42fc199259a694f49db5db0d6994d0
SHA512

64045f99bdbe78e868355c2c36e97505a4a148acec86f3c600c4e417812e3e8aa8bfcddde46467e6077885055f82cad52617a434e1c550768edfeb453145d381
SSDEEP

384:PEgccccccccccccccccccccccccccccccccccccccccccccccccccccccccccccQ:PrU7UTyiWyaM37u1f+k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d76e7bad1598563cb8c0b4b94369f234

Files

d76e7bad1598563cb8c0b4b94369f234
.exe windows:4 windows x86 arch:x86

736a0e38c095e041168942aa38dc0930

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
GetModuleHandleA
GetTickCount
FreeLibrary
Sleep
GlobalFree
LocalAlloc
lstrcatA

gdi32

MoveToEx
SetBkMode
GetObjectA
GetBkColor
SetROP2
GetDeviceCaps

user32

GetWindowRect
SetWindowTextA
EndPaint
LoadIconA
BeginPaint
EndDialog
DestroyWindow
GetMessageA
DispatchMessageA
PostQuitMessage
DialogBoxParamA
GetFocus
ShowWindow
DefWindowProcA
SetFocus
GetClientRect
ScreenToClient
CreateWindowExA
GetSysColor
MessageBoxA
TranslateMessage

msvcrt

wcslen
wcstoul
_adjust_fdiv
toupper
wcschr
_c_exit
exit
memmove
_controlfp
__p__fmode
_XcptFilter

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ